Cookie Bomb

Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE) Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)

Support HackTricks

Check the subscription plans!
Join the 💬 Discord group or the telegram group or follow us on Twitter 🐦 @hacktricks_live.
Share hacking tricks by submitting PRs to the HackTricks and HackTricks Cloud github repos.

Cookie bomb inahusisha kuongeza idadi kubwa ya cookies kubwa kwenye domain na subdomains zake zikilenga mtumiaji. Kitendo hiki kinapelekea mwathirika kutuma maombi makubwa ya HTTP kwa seva, ambayo baadaye yanakataliwa na seva. Matokeo yake ni kuanzishwa kwa Denial of Service (DoS) inayolenga mtumiaji ndani ya domain hiyo na subdomains zake.

Mfano mzuri unaweza kuonekana katika andiko hili: https://hackerone.com/reports/57356

Na kwa maelezo zaidi, unaweza kuangalia hii presentation: https://speakerdeck.com/filedescriptor/the-cookie-monster-in-your-browsers?slide=26

Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE) Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)

Support HackTricks

Check the subscription plans!
Join the 💬 Discord group or the telegram group or follow us on Twitter 🐦 @hacktricks_live.
Share hacking tricks by submitting PRs to the HackTricks and HackTricks Cloud github repos.

PreviousCookie Jar Overflow NextCORS - Misconfigurations & Bypass

Last updated 4 months ago